About this role
Salary: £70,000 - 70,000 per year
Requirements
: We are looking for someone with previous hands-on experience in SecOps or Incident Response. Recognized security certifications such as Security+, CEH, or Microsoft security certifications are a must. You should have a strong knowledge of Microsoft Windows OS security and hardening, along with working PowerShell scripting abilities for automation tasks.
A solid understanding of cloud-native security across M365, Azure, and AWS is essential. Experience with enterprise IT infrastructure will be beneficial.Additionally, having strong experience with Qualys, exposure to Varonis, network security knowledge or relevant certifications (TCP/IP, VPNs, routing, segmentation), and experience working with ServiceNow will be highly favored. Responsibilities: In this role, you will monitor security tools, including SIEM (QRadar), and respond to threat detection alerts.
You will triage, analyze, and prioritize security incidents using ServiceNow. Investigating root causes of security issues and designing effective remediation solutions will be
Key Responsibilities
. You will oversee patch management, conduct vulnerability scans with Qualys, analyze results, and prioritize remediation.Documentation of SecOps processes and creating knowledge base articles in line with best practices is crucial. Automating security tasks and toolchains using scripting (PowerShell, Batch, etc.) is expected, as well as collaborating with external SOC teams.
You will prepare post-incident reports and root cause analyses, manage end-user device (EUD) security via MS Intune, Sophos, and NinjaOne, and schedule vulnerability scans on critical infrastructure. Maintaining patching compliance for OS, Microsoft Office, and third-party applications will also fall under your purview. Supporting infrastructure teams to deploy systems, enhance security policies, and manage security-driven changes, as well as producing weekly security operations reports and managing Cisco Umbrella web filtering and SSL inspection policies, will be part of your role.
Technologies: AWSAzureCloudCiscoNetworkPowerShellSecurityServiceNowTCP/IPWebWindowsDevOpsSupport More: This is a critical leadership role within our organization, which is currently undergoing significant digital transformation. Our ambitious growth and acquisition plans are driving the need for scalable, standardized, and efficient business applications. We are seeking a proactive security professional with strong technical expertise across application, network, and infrastructure security.
In this position, you will play a key part in implementing security controls, mitigating risks, and contributing to the continuous improvement of our overall security posture. Please note that this role requires you to work onsite for four days per week initially, dropping to three once you pass probation. Our working hours are from 08:00 to 17:00. last updated 26 week of 2026